Setting Group Policy by Device Ownership

1. In a computing system comprising one or more client terminals, a method of applying group policy access permissions for a specific device used on the one or more client terminals, the method comprising the steps of: receiving, by a first client terminal of the one or more client terminals, a first group policy associated with the specific device, wherein the specific device is operatively connected to the first client terminal; receiving, by the first client terminal from the specific device, a device identifier unique to the specific device; transmitting, by the first client terminal, the first group policy associated with the unique device identifier to a server; receiving, by a second client terminal of the one or more client terminals, a request by a user to access the specific device, wherein the specific device is operatively connected to the second client terminal; receiving, by the second client terminal from the server, the first group policy associated with the unique device identifier for the specific device; determining, by the second client terminal, whether the first group policy associated with the unique device identifier permits access to the specific device by the user of the second client terminal; and when the first group policy associated with the unique device identifier permits access by the user to the specific device, allowing, by the second client terminal, the user to access the specific device.

2. The method as recited in claim 1 , said step of receiving a first group policy associated with the unique device identifier for the specific device comprising receiving a user-defined policy relating to which users have access permissions for the specific device.

3. The method as recited in claim 1 , said step of receiving a first group policy associated with the unique device identifier for the specific device comprising receiving a user-defined policy relating to each of the one or more client terminals on which the specific device may be used.

4. A computer-readable storage medium, wherein the_medium does not consist of a propagated signal, the medium having computer-executable instructions for programming a processor on a client terminal to perform a method of configuring one or more group policies for one or more specific devices used on one or more client terminals, the method comprising the steps of: (a) receiving, at the client terminal, a first device identifier unique to a first specific device, wherein the first specific device belongs to a first class of specific devices; (b) receiving a second device identifier unique to a second specific device, wherein the second specific device belongs to the first class of specific devices; (c) receiving, at the client terminal, a first group policy to apply to the first specific device, wherein the first group policy is associated with the first unique device identifier, and wherein the first group policy is more restrictive than a group policy applicable to the first class of specific devices to which the first specific device belongs; (d) transmitting, by the client terminal, the first group policy associated with the unique device identifier to a server; (e) retrieving, from the server, a second group policy of the one or more group policies to apply to the second specific device, wherein the second group policy is associated with the second unique device identifier, and wherein the second group policy is different from the first group policy; (f) configuring, by the client terminal, access permissions for the first specific device based on the first group policy; and (g) configuring access permissions for the second specific device based on the second group policy.

5. The computer-readable storage medium as recited in claim 4 , wherein the first group policy allows a first user to use the first specific device on the client terminal.